A lightweight static analysis engine for Solidity smart contracts. Extracts code features, detects dangerous patterns (delegatecall, tx.origin, call.value), computes heuristic risk scores, and classifies contracts into Low/Medium/High risk levels. Includes multiple example vulnerabilities and a clean CLI for rapid security assessment.
security static-code-analysis risk-analysis static-analysis ethereum smart-contracts code-analysis developer-tools solidity vulnerability-detection evm cli-tool python-project solidity-security blockchain-security audit-tools heuristic-model smart-contract-auditing dapp-security smart-contract-vulnerabilities
-
Updated
Nov 15, 2025 - Solidity